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DETAILED ACTION 

1. A request for continued examination under 37 CFR 1.114, including the fee set 
forth in 37 CFR 1 .17(e), was filed in this application after allowance or after an Office 
action under Ex Parte Quayle, 25 USPQ 74, 453 O.G. 213 (Comm'r Pat. 1935). Since 
this application is eligible for continued examination under 37 CFR 1.114, and the fee 
set forth in 37 CFR 1.17(e) has been timely paid, prosecution in this application has 
been reopened pursuant to 37 CFR 1.114. Applicant's submission filed on November 
20, 2006 has been entered. Claims 2, 4, 13-17, 22-25, 37-47 and 66-69 have been' 
canceled. Claims 1,18, 20, 26, 29, 32, 48, 53 58 and 65 have been amended. Claims 

1. 3, 5-12, 18-21, 26-36 and 48-65 are pending. 

Response to Arguments 

2. Applicant's arguments with respect to independent claims have been considered 
but are moot in view of the new ground(s) of rejection. 

Claim Rejections - 35 (JSC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

Claims 1, 3, 5-12, 18-21, 26-36 and 48-65 rejected under 35 U.S.C. 103(a) as 

being unpatentable over Ballardie (Network Working Group, University College of 
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London, May 1996) in view of Bird et al. ("The KryptoKnight Fannily of Light-Weight 
Protocol for Authentication and Key Distribution", IEEE/ACM Transactions on 
Networking, Vol. 3, No. 1 February 1995, B. Two-Way Authentication -Basic Building 
Block, pages 32-33, hereinafter Bird). 

In respect to claim 1, Ballardie discloses a communication system comprising: 

a rendezvous point device that fonA^ards multicast communication messages to 
members of a shared tree; a designated device in communication with the rendezvous 
point device via a number of intermediate devices (see pages 8-12, e.g. host h, router A 
and B-intermediate device and Core router-rendezvous point device, page 11); 

a host device in communication with a designated device, wherein: the host 
device forwards an authentication key, generated by a key server for the host device, to 
the designate device ( page 10, last paragraph - page 1 1 , first paragraph, page 2, third 
paragraph, the key server is inherently required in order for the key to be generated). 

the host device sends a join request to the designated device using a 
predetermined multicast group management protocol in order to join the shared tree for 
receiving the multicast communication messages fonA/arded by the rendezvous point 
device (pages 9-11); 

the designated device receives the join request and fonA/ards to the rendezvous 
point device via the number of intermediate devices an encoded join request generated 
using an authentication key associated with the host device (pages 9-10); 

the rendezvous point device receives the encoded joint request and 
authenticates the encoded join message using the authentication key associated with 
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the host device; and the host device is prevented from receiving the multicast 
communication messages fonA/ards by the rendezvous point device, if the rendezvous 
point device determined that the encode join message is not authentic (pages 10, last 
paragraph-page 12, 3"^ paragraph). 

Ballardie does not explicitly disclose the encoded join request comprises a tag 
field computed using a keyed hash function and the authentication key and a nonce 
field comprising a number for preventing playback attack. However, Bird discloses a 
protocols for performing a two way authentication with tag field for cryptographic one- 
way hash functions, a MAC called Message Authentication Codes and a nonce field to 
prove a network's identity (see Bird, page 32, col. 2, 2"^ paragraph). It would have been 
obvious to one of ordinary skill in the art at the time the invention was made to 
implement the protocols taught by Bird with the encoded join request of Ballardie to 
ensure the security of the network is protected and at the same time efficient in 
message size and computation overhead and resistant to a wide set of attacks (Bird, 
page 32, col. 2, 1®* paragraph). 

In respect to claim 3, Ballardie discloses the communication system of claim 1 , 
wherein the key server provides the authentication key to both the host device and the 
rendezvous point device using a secure key distribution mechanism (pages 8-11). 

In respect to claim 7, Ballardie discloses the communication system of claim 1 , 
wherein the designated device joins the shared tree on behalf of the host device (see 
pages 10-11). 
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In respect to claim 8, Ballardie discloses the communication system of claim 7, 
wherein the designated device establishes appropriate multicast routes for fonwarding 
multicast communication messages to the host (see Ballardie, pages 9-12). 

In respect to claim 9, Ballardie discloses the communication system of claim 1 , 
wherein each intermediate device receives the encoded join request and fonA/ards the 
encoded join request toward other routing element (see page 10). 

In respect to claim 10, Ballardie discloses the communication system of claim 9, 
wherein each intermediate device that is not already joined to the shared tree joins the 
shared tree on behalf of the host device and establishes appropriate multicast routes for 
foHA/arding multicast communication messages toward the host device upon receiving 
the join request (see Ballardie, pages 8-12). 

In respect to claim 11, Ballardie discloses the communication system of claim 9, 
wherein each intermediate device that is already joined to the shared tree waits for an 
explicit acknowledgment message from the primary router and establishes appropriate 
multicast routes for forwarding multicast communication messages toward the host 
device only upon receiving the explicit acknowledgment message from the primary 
router (see Ballardie, pages 8-12). 

In respect to claim 12, Ballardie disclose the communication system of claim 1 , 
wherein the primary router sends an explicit acknowledgment message toward the host 
device upon determining that the join request is authentic (see Ballardie, page 9-12). 

In respect to claim 18, Ballardie discloses a method comprising: 
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Obtaining an authentication key associated with a host device from a key server 
following authentication of the host device by the key server; and sending a join request 
to a designated device using a predetermined multicast group management protocol, 
the join request including the authentication key for use by the designated device for 
encoding the join message prior to forwarding of the join message to rendezvous point 
(see Ballardie, pages 8-12, page 10, last paragraph - page 11, first paragraph, col. 2, 
third paragraph, the key server is inherently required in order for the key to be 
generated). 

In respect to claim 19, the claim limitation is similar to claim 6. Therefore, claim 
19 is rejected based on the similar rationale. 

In respect to claims 20-21, the claim limitations are similar to claims 18-19. 
Therefore, claims 20-21 are rejected based on the similar rationale. 

In respect to claim 26, Ballardie discloses a method comprising: 

Receiving a join request from a host device; generating an encoded join request 
using an authentication key associated with the host device; and sending the encoded 
join request toward a rendezvous point device to enable authentication of the join 
message at the rendezvous point using the authentication key associated with the host 
device (see Ballardie, pages 8-12; page 2, third paragraph). 

Ballardie does not explicitly disclose the encoded join request comprises a tag 
field computed using a keyed hash function and the authentication key and a nonce 
field comprising a number for preventing playback attack. However, Bird discloses a 
protocols for performing a two way authentication with tag field for cryptographic one- 
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way hash functions, a MAC called Message Authentication Codes and a nonce field to 
prove a network's identity (see Bird, page 32, col. 2, 2"^ paragraph). It would have been 
obvious to one of ordinary skill in the art at the time the invention was made to 
implement the protocols taught by Bird with the encoded join request of Ballardie to 
ensure the security of the network is protected and at the same time efficient in 
message size and computation overhead and resistant to a wide set of attacks (Bird, 
page 32, col. 2, 1®* paragraph). 

In respect to claim 27, Ballardie discloses the method of claim 26, wherein the 
join request includes the authentication key (see Ballardie, page 10). 

In respect to claim 28, Ballardie discloses the method of claim 26, further 
comprising: 

Joining a shared tree on behalf of the host device and establishing and 
establishing appropriate multicast routes for forwarding multicast communication 
messages to the host devices (see Ballardie, pages 8-12). 

In respect to claims 29-36, the claim limitations are similar to claims 26-28. 
Therefore, claims 29-36 are rejected based on the similar rationale. 

In respect to claim 48, Ballardie discloses a method comprising: 

Receiving, from a designated routing device coupled to a host an encoded join 
request for the host device, the encoded join request being encoded by the designated 
routing device using an authentication key associated with the host, the authentication 
key being received by the host device following authentication of the host device by a 
key server and forwarded in a join request forwarded from host device to the designed 
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routing device; the authentication key being received by the host device following 
authentication of the host device by a key server and fonA/arding in a join request 
forwarded from host device to the designed routing device (see Ballardie, pages 8-12, 
note page 10, last paragraph - page 11, first paragraph, page 2, third paragraph, the 
key server is inherently required in order for the key to be generated and distributed); 
authenticating the encoded join request using the host device authentication key to 
determine whether or not the encoded joint message is authentic; and establishing 
appropriate multicast routes for fonA/arding multicast communication messages to the 
host device if and only if the join request is determined to be authentic (see Ballardie, 
pages 8-12, page, e.g. "c also authenticates host h'\ page 10, last paragraph to page 
12, third paragraph; page 2, third paragraph). 

Ballardie does not explicitly disclose the encoded join request comprises a tag 
field computed using a keyed hash function and the authentication key and a nonce 
field comprising a number for preventing playback attack. However, Bird discloses a 
protocol for performing a two-way authentication with tag field for cryptographic one-way 
hash functions, a MAC called Message Authentication Codes and a nonce field to prove 
a network's identity (see Bird, page 32, col. 2, 2"^ paragraph). It would have been 
obvious to one of ordinary skill in the art at the time the invention was made to 
implement the protocols taught by Bird with the encoded join request of Ballardie to 
ensure the security of the network is protected and at the same time efficient in 
message size and computation overhead and resistant to a wide set of attacks (Bird, 
page 32, col. 2, 1®* paragraph). 
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In respect to clainn 49, Ballardie discloses the nnethod of claim 48, wherein 
authenticating the encoded join request comprises: 

maintaining a number of authentication keys; determining the host device for the 
encoded join request; and searching for an authentication key associated with the host 
device (see Ballardie, page 10, last paragraph to page 12, third paragraph). 

In respect to claim 50, Ballardie discloses the method of claim 49, wherein 
authenticating the encoded join request further comprises: 

failing to find an authentication key associated with the host device; and 
determining that the encoded ,loin request is not authentic (see Ballardie, page 10, last 
paragraph to page 12, third paragraph). 

In respect to claim 51, Ballardie discloses the method of claim 49, wherein 
authenticating the encoded join request further comprises: 

finding an authentication key associated with the host device; and 
authenticating the encoded join request using the authentication key associated with the 
host device (see Ballardie, page 10. last paragraph to page 12, third paragraph). 

In respect to claim 52, Ballardie discloses the method of claim 48, further 
comprising: 

sending an explicit acknowledgment toward the host device if and only if the 
encoded join request is determined to be authentic (see Ballardie, page 10, last 
paragraph to page 12, third paragraph). 

In respect to claims 53-62 and 65, the claim limitations are apparatus and 
computer readable medium and a communication system claims that are substantially 
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similar to method claims 48-52. Therefore, claims 53-62 and 65 are rejected based on 
the similar rationale. 

In respect to claims 63-64, Ballardie discloses the computer readable medium of 
claim 58, wherein the computer readable medium is a computer storage medium and a 
communication medium (see Ballardie, page 1). 

In respect to claim 65, the claim limitation is substantially similar to claim 1 . 
Therefore, claim 65 is rejected based on the similar rationale. 

Conclusion 

4. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tongoc Tran whose telephone number is (571) 272- 
3843. The examiner can normally be reached on 8:30-5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kambiz Zand can be reached on (571) 272-381 1 . The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more infomriation about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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